Netgear EX8000 V1.0.0.126 was discovered to contain a command injection vulnerability via the switch_status function.
The vulnerability (CWE-77) consists of improper neutralization of special characters passed to the switch_status function, which subsequently executes them as system commands. An attacker can send a crafted network request containing a malicious payload without the need to possess any access credentials. The attack vector is network-based, requires no user interaction or special privileges, making it exceptionally dangerous.
An attacker can execute arbitrary system commands on the device with potentially the highest privileges, leading to complete compromise of the device's confidentiality, integrity, and availability — including the ability to permanently modify network configuration or use the device as an entry point to the internal network.
Apply patches available from the manufacturer according to the references. Until an update is applied, it is recommended to isolate the device management panel from public network access and restrict access to the administrative interface only to trusted hosts.
Netgear EX8000 (Wi-Fi range extender) with firmware version V1.0.0.126
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HNetgear Ex8000
HWNetgearwszystkie wersjeNetgear Ex8000 Firmware
OSNetgear1.0.0.126
Related vulnerabilities
Command Injection w Netgear EX8000 via parametr Iface (action_wireless)
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects D7800 b...
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects EX6200v...
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 befo...
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D7800 b...